VDB
CVE-2025-52455
CVE-2025-52455
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server on Windows, Linux (EPS Server modules) allows Resource Location Spoofing. This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
EPSS 0.24% · 47.8th percentile
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.24%
47.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Salesforce | Tableau Server | 0, 0, 0 |
| tableau | tableau_server | 0, 2024.2, 2025.1 |
Timeline
- Jul 25, 2025 Coalition ESS Score
- Jul 25, 2025 Coalition ESS Score
- Jul 25, 2025 CVE Published
- Jul 25, 2025 CVE Updated
- Jul 26, 2025 EPSS Score
- Jul 29, 2025 Coalition ESS Score
- Aug 4, 2025 EPSS Score
- Aug 13, 2025 EPSS Score
- Aug 22, 2025 EPSS Score
- Aug 22, 2025 Coalition ESS Score
- Aug 26, 2025 Coalition ESS Score
- Aug 31, 2025 EPSS Score